misra.py: R14.2: Verify for loop counter modification (#2409)

* misra.py: R14.2: Verify for counter modification

Add additional check to detect modification of loop counter in loop
body. Related issue: https://trac.cppcheck.net/ticket/9490

Add small fix that treat all assignment operators defined in N1750
6.5.16 as has side affects. This will affects rules 13.1, 13.3, 13.5
and allow to catch some false negatives.

* Add tests for fixed FPs for R13.{1,5,6}

* fix

* use isAssignmentOp from cppcheck data

* remove unused set

* handle case with empty body or syntax error

* add test with outer variable

* Fix FP in nested loops, add tests

* Fix FP on outer variables

* Fixup false positives for not loop counters
This commit is contained in:
Georgy Komarov 2019-12-15 20:23:12 +03:00 committed by Daniel Marjamäki
parent f87cd9818c
commit c46e44e39e
2 changed files with 158 additions and 20 deletions

View File

@ -256,6 +256,38 @@ def getForLoopExpressions(forToken):
lpar.astOperand2.astOperand2.astOperand2]
def getForLoopCounterVariables(forToken):
""" Return a set of Variable objects defined in ``for`` statement and
satisfy requirements to loop counter term from section 8.14 of MISRA
document.
"""
if not forToken or forToken.str != 'for':
return None
tn = forToken.next
if not tn or tn.str != '(':
return None
vars_defined = set()
vars_exit = set()
vars_modified = set()
cur_clause = 1
te = tn.link
while tn and tn != te:
if tn.variable:
if cur_clause == 1 and tn.variable.nameToken == tn:
vars_defined.add(tn.variable)
elif cur_clause == 2:
vars_exit.add(tn.variable)
elif cur_clause == 3:
if tn.next and hasSideEffectsRecursive(tn.next):
vars_modified.add(tn.variable)
elif tn.previous and tn.previous.str in ('++', '--'):
vars_modified.add(tn.variable)
if tn.str == ';':
cur_clause += 1
tn = tn.next
return vars_defined & vars_exit & vars_modified
def findCounterTokens(cond):
if not cond:
return []
@ -304,7 +336,7 @@ def isFloatCounterInWhileLoop(whileToken):
def hasSideEffectsRecursive(expr):
if not expr:
if not expr or expr.str == ';':
return False
if expr.str == '=' and expr.astOperand1 and expr.astOperand1.str == '[':
prev = expr.astOperand1.previous
@ -316,7 +348,7 @@ def hasSideEffectsRecursive(expr):
e = e.astOperand1
if e and e.str == '.':
return False
if expr.str in ('++', '--', '='):
if expr.isAssignmentOp or expr.str in {'++', '--'}:
return True
# Todo: Check function calls
return hasSideEffectsRecursive(expr.astOperand1) or hasSideEffectsRecursive(expr.astOperand2)
@ -1425,6 +1457,28 @@ class MisraChecker:
elif hasSideEffectsRecursive(expressions[1]):
self.reportError(token, 14, 2)
# Inspect modification of loop counter in loop body
counter_vars = getForLoopCounterVariables(token)
outer_scope = token.scope
body_scope = None
tn = token.next
while tn and tn.next != outer_scope.bodyEnd:
if tn.scope and tn.scope.nestedIn == outer_scope:
body_scope = tn.scope
break
tn = tn.next
if not body_scope:
continue
tn = body_scope.bodyStart
while tn and tn != body_scope.bodyEnd:
if tn.variable and tn.variable in counter_vars:
if tn.next:
# TODO: Check modifications in function calls
if hasSideEffectsRecursive(tn.next):
self.reportError(tn, 14, 2)
tn = tn.next
def misra_14_4(self, data):
for token in data.tokenlist:
if token.str != '(':

View File

@ -351,6 +351,12 @@ void misra_12_4() {
struct misra_13_1_t { int a; int b; };
void misra_13_1(int *p) {
volatile int v;
int a1[3] = {0, (*p)++, 2}; // 13.1
int a2[3] = {0, ((*p) += 1), 2}; // 13.1
int a3[3] = {0, ((*p) = 19), 2}; // 13.1
int b[2] = {v,1};
struct misra_13_1_t c = { .a=4, .b=5 }; // no fp
volatile int vv;
int v = 42;
@ -403,10 +409,15 @@ void misra_13_4() {
void misra_13_5() {
if (x && (y++ < 123)){} // 13.5
if (x || ((y += 19) > 33)){} // 13.5
if (x || ((y = 25) > 33)){} // 13.5 13.4
if (x || ((--y) > 33)){} // 13.5
else {}
}
void misra_13_6() {
int a = sizeof(x|=42); // 13.6
a = sizeof(--x); // 13.6 13.3
return sizeof(x++); // 13.6
}
@ -428,16 +439,25 @@ void misra_14_1() {
void misra_14_2_init_value(int32_t *var) {
*var = 0;
}
void misra_14_2(bool b) {
for (dostuff();a<10;a++) {} // 14.2
void misra_14_2_fn1(bool b) {
for (;i++<10;) {} // 14.2
for (;i<10;dostuff()) {} // TODO
int32_t g = 0;
for (int32_t i2 = 0; i2 < 8; ++i2) {
i2 += 2; // FIXME False negative for "14.2". Trac #9490
int g_arr[42];
g += 2; // no-warning
for (int32_t i2 = 0; i2 < 8; ++i2) {
i2 += 2; // 14.2
i2 |= 2; // 14.2
g += 2;
i2 ^= 2; // 14.2
if (i2 == 2) {
g += g_arr[i2];
}
misra_14_2_init_value(&i2); // TODO: Fix false negative in function call
}
for (misra_14_2_init_value(&i); i < 10; ++i) {} // no-warning FIXME: False positive for 14.2 Trac #9491
bool abort = false;
for (i = 0; (i < 10) && !abort; ++i) { // no-warning
if (b) {
@ -445,7 +465,71 @@ void misra_14_2(bool b) {
}
}
for (;;) {} // no-warning
// TODO check more variants
int x = 10;
for (int i = x; i < 42; i++) {
x++; // no warning
}
for (int i = (x - 3); i < 42; i++) {
x ^= 3; // no warning
}
for (int i = 0, j = 19; i < 42; i++) { // 12.3 14.2
i += 12; // 14.2
j /= 3; // TODO: 14.2
}
for (int i = 0; i < 19; i++) {
for (int j = 0; j < 42; j++) {
i--; // 14.2
for (int k = j; k > 5; k--) {
i++; // 14.2
for (int h = 35; h > 5; k++) // 14.2
{}
}
}
}
}
static void misra_14_2_fn2()
{
int y = 0;
// Handle cases when i is not treated as loop counter according MISRA
// definition.
for (int i = 0, j = 19; y < 10, --j > 10; y++, j--) { // 14.2 12.3
i++; // no warning
}
for (int i = 0, j = 19; y < 10, --j > 10; y++, j--) { // 14.2 12.3
i++; // no warning
}
for (int i = 0; y < 10; y++) { // TODO: 14.2
i++; // no warning
}
for (int i = 0; i < 10; y++) { // TODO: 14.2
i++; // no warning
}
for (int i = 0; y < 10; i++) { // TODO: 14.2
i++; // no warning
}
for (int i = 0; i < 10; (y+=i)) {
i++; // no warning
}
// i is a loop counter according MISRA definition
for (int i = 0; i < 10; i++) {
i++; // 14.2
if (++i > 5) { // 14.2
break;
}
}
for (int i = 0; i < 10; (i+=42)) {
i++; // 14.2
}
for (int i = 0; i < 10; (i|=y)) {
i++; // 14.2
}
return 0;
}
struct {